Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

email SPF

Posted on 2013-01-11
6
Medium Priority
?
429 Views
Last Modified: 2013-01-26
exchange 2010 primary domain use, but set to accept a few other domains.  Users with a nonprimarydomain.com address are getting mail rejected for some sends by another outside server. Trying to understand the best way to change SPF record  and the format\syntax for the change and most importantly for which domain to edit/add the SPF record?
0
Comment
Question by:dee30
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 14

Accepted Solution

by:
BlueCompute earned 668 total points
ID: 38767005
Hi dee30,

start off by checking your current SPF records here: http://www.kitterman.com/spf/validate.html
Enter nonprimarydomain.com in the top box and click 'Get SPF record (if any)'.

Can you post any NDRs you have received for rejected mail?
0
 
LVL 6

Assisted Solution

by:arroryn
arroryn earned 668 total points
ID: 38767015
SPF records needed to be amended in the DNS record for your primary domain. If you do not have access to your host server (or host DNS records) then you will need to request this from your hosting company.

Assuming the other domains do not have their own MX records and you only use the primary domain,

v=spf1 include:alternativedomain.com ~all

Your full SPF record should look as follows:

v=spf1 include:_spf.primarydomain.com include:secondarydomain.com ?all (adding as many domains as needed).
0
 
LVL 6

Expert Comment

by:arroryn
ID: 38767018
I would also suggest you then use MX Toolbox or similar to complete SPF checks on the domain.
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:dee30
ID: 38767278
okay understanding more...thx and here is a little bit more info...

primarydomain.com and the three exchang2010alsoacceptedomains.com  all have the same MX records set that reference primarydomain.inboundblahblah.net priority 10.

So I need to edit/add SPF under primarydomain.com DNS manager?
The FULL exmple listed by arroryn?

Let me know if off/still not getting it.

Thank You.
0
 
LVL 63

Assisted Solution

by:Simon Butler (Sembee)
Simon Butler (Sembee) earned 664 total points
ID: 38767587
SPF records are for outbound email only.
Therefore you need SPF records in all domains that you are sending email from. These would all reference the same hosts as being authorised to send email.

Simon.
0
 

Author Comment

by:dee30
ID: 38770412
I setup the txt SPF record for the alternativedomain.com to read as follows:

v=spf1 +a +mx ptr:primarydomain.com -all

waiting for the change to propogate.  

Thank you for giving me a better understanding, allt that did.   unless further corrections/comment will close and assign points next.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A list of top three free exchange EDB viewers that helps the user to extract a mailbox from an unmounted .edb file and get a clear preview of all emails & other items with just a single click on mailboxes.
This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question